lloving
asked on
VPN over Comcast business gateway
Had a point to point VPN connecting over Comcast using SMC gateway in all locations. Netgear FVS214 routers at all locations using Netgear IPSec setup. All was working fine and then one day it quits.
Cannot find out why. Nothing we control appears to have changed.
Any ideas on where to check or what alternatives are available.
Cannot find out why. Nothing we control appears to have changed.
Any ideas on where to check or what alternatives are available.
ASKER
Ok, here is the output from the VPN log on the host router (Netgear FVS336Gv2). I would appreciate any help deciphering what this log is trying to tell me. Thanks for any response.
2015 Jan 23 14:56:02 [FVS336GV2] [IKE] Initiating new phase 2 negotiation: 50.78.236.145[500]<=>50.25
2015 Jan 23 14:56:02 [FVS336GV2] [IKE] Configuration found for 50.251.114.165._
2015 Jan 23 14:56:02 [FVS336GV2] [IKE] accept a request to establish IKE-SA: 50.251.114.165_
2015 Jan 23 14:55:47 [FVS336GV2] [IKE] an undead schedule has been deleted: 'quick_i1prep'._
2015 Jan 23 14:55:47 [FVS336GV2] [IKE] Phase 2 negotiation failed due to time up. c4d2ff0089c77029:af4c283fb
- Last output repeated 3 times -
2015 Jan 23 14:55:09 [FVS336GV2] [IKE] Ignore information because the message has no hash payload._
2015 Jan 23 14:54:47 [FVS336GV2] [IKE] Initiating new phase 2 negotiation: 50.78.236.145[500]<=>50.25
2015 Jan 23 14:54:47 [FVS336GV2] [IKE] Configuration found for 50.251.114.165._
2015 Jan 23 14:54:47 [FVS336GV2] [IKE] accept a request to establish IKE-SA: 50.251.114.165_
2015 Jan 23 14:56:02 [FVS336GV2] [IKE] Initiating new phase 2 negotiation: 50.78.236.145[500]<=>50.25
2015 Jan 23 14:56:02 [FVS336GV2] [IKE] Configuration found for 50.251.114.165._
2015 Jan 23 14:56:02 [FVS336GV2] [IKE] accept a request to establish IKE-SA: 50.251.114.165_
2015 Jan 23 14:55:47 [FVS336GV2] [IKE] an undead schedule has been deleted: 'quick_i1prep'._
2015 Jan 23 14:55:47 [FVS336GV2] [IKE] Phase 2 negotiation failed due to time up. c4d2ff0089c77029:af4c283fb
- Last output repeated 3 times -
2015 Jan 23 14:55:09 [FVS336GV2] [IKE] Ignore information because the message has no hash payload._
2015 Jan 23 14:54:47 [FVS336GV2] [IKE] Initiating new phase 2 negotiation: 50.78.236.145[500]<=>50.25
2015 Jan 23 14:54:47 [FVS336GV2] [IKE] Configuration found for 50.251.114.165._
2015 Jan 23 14:54:47 [FVS336GV2] [IKE] accept a request to establish IKE-SA: 50.251.114.165_
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Comcast is the culprit. They appear bump the gateway in and out of "bridge" mode. Problem mysteriously solves its self when I complain to Comcast support.
If Comcast broke your VPN, it's probably because they have a more expensive "business" plan that they can't wait to sell. Just call them.
HTH,
Dan